ImageMagick: Stack buffer overflow in FTXT reader via oversized integer field

Summary

A stack-based buffer overflow exists in the ImageMagick FTXT image reader. A crafted FTXT file can cause out-of-bounds writes on the stack, leading to a crash.

=================================================================
==3537074==ERROR: AddressSanitizer: stack-buffer-overflow on address 0x7ffee4850ef0 at pc 0x5607c408fb33 bp 0x7ffee484fe50 sp 0x7ffee484fe40
WRITE of size 1 at 0x7ffee4850ef0 thread T0

References

dlemstra published to ImageMagick/ImageMagick Feb 23, 2026

Published by the National Vulnerability Database Feb 24, 2026

Published to the GitHub Advisory Database Feb 24, 2026

Reviewed Feb 24, 2026

Last updated Feb 24, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Package

Affected versions

Patched versions

Description

Summary

References

Severity

CVSS overall score

CVSS v3 base metrics

CVSS v3 base metrics

EPSS score

Exploit Prediction Scoring System (EPSS)

Weaknesses

Stack-based Buffer Overflow

CVE ID

GHSA ID

Source code

Credits

Uh oh!